[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Transparent proxy from different networks

Am Montag, den 06.10.2008, 10:05 -0500 schrieb Jason Voorhees:
> Hi all:
> I have a Squid running on listening on 3128 TCP port. Users
> from can browse the Internet without problems thanks to a
> REDIRECT rule in my shorewall config.
> But users from differents networks (,,
> etc.) can't browse the Internet. Those networks are connected to
> via a VPN connection.
> My redirect rule in iptables syntax is like this:
> iptables -t nat -A PREROUTING -s -i eth2 -p tcp --dport 80 -j
> REDIRECT --to-ports

I think the end of the tunnel from VPN is not the device eth2.
The tunnel ends normaly at a bridge (br#) or a virtual device (like tun#
or tap#).
IMHO you must greate the same redirect-rule for the VPN-device.

> Is there a restriction to work transparent proxy for other networks
> different from Do I have to configure squid to listen on
> each range o network addresses?
> Thanks

not sure, but i think thats the way.


Reply to: